Free tools and resources for Data Protection Officers!

Tag Archives for " data breach "

Data breach whistle-blowers rise after GDPR

General Data Protection Regulation has given people the courage to notify the authorities on any data breaches that otherwise may have gone under their radar.

According to law firm RPC, there has been a 165 per cent increase in the number of whistle-blower reports since GDPR came into force last May. Looking at raw figures, a total of 82 reports have been made to the ICO, compared to 31 before GDPR.

Full article: Data breach whistle-blowers rise after GDPR | ITProPortal

Cybersecurity in 2019

While you prepare your defenses against the next big thing, also pay attention to the longstanding threats that the industry still hasn’t put to rest.

Will 2019 be the year we see a nation-state take down a large-scale industrial installation? How much of the world’s cryptocurrency will be mined by hackers using unsuspecting endpoints? What kind of damage can we expect from well-intentioned but misguided vigilantes? And what does it all mean to you?

Full article: Cybersecurity in 2019: From IoT & Struts to Gray …

Facebook Sued by District of Columbia Over Cambridge Analytica

The attorney general of the District of Columbia, Karl Racine, sued Facebook on Wednesday for allowing the political consulting firm Cambridge Analytica to harvest the private data of tens of millions of the social network’s users.

It was a first step by a state attorney general to punish Facebook for privacy violations. “Facebook failed to protect the privacy of its users and deceived them about who had access to their data and how it was used,” Mr. Racine said in a statement.

Full article: Facebook Sued by District of Columbia Over Cambridge Analytica – The New York Times

First UK GDPR enforcement action is against Canadian firm with apparently no EU presence

On 24 October 2018, the UK data protection enforcement body, the Information Commissioner’s Office (ICO), issued an Enforcement Notice against Canadian data services firm, AggregateI Q (AIQ). This was the first Enforcement Notice issued by the ICO under the General Data Protection Regulation (GDPR).

Source: First UK GDPR enforcement action is against Canadian firm with apparently no EU presence

In Spain, data breach notifications increase since the entry into application of the GDPR

The Spanish data protection authority – Agencia Española de Protección de Datos or AEPD – has received 418 notifications of data breaches since the entry into application of the GDPR. Of these 418 notifications, only 11 have required additional investigation by the DPA.

In the latest annual report published by AEPD, the DPA reports that complaints had already increased by 37% from 2015-2017, and that in 2017, the authority received around 10 500 complaints.

Source: In Spain, data breach notifications increase since the entry into application of the GDPR

Twitter Draws Data Privacy Concerns with Two New Bugs

The two flaws shed light on heightened concern around user data privacy when it comes to data.

On Monday, the social-media giant revealed a hole that accidentally enabled bad actors to pull the country codes of accounts’ phone numbers – and revealed that several IP addresses located in China and Saudi Arabia may have been trying to access the exposed data. This comes on the heels of a tricky glitch, disclosed over the weekend, that had allowed several apps to read users’ direct messages – even when they told users that they wouldn’t.

Full article: Twitter Draws Data Privacy Concerns with Two New Bugs | Threatpost | The first stop for security news

GDPR: more than 8,000 data breaches notified to ICO

More than 8,000 data breaches have been reported in the UK since the General Data Protection Regulation (GDPR) took effect in May, the information commissioner has said.

Elizabeth Denham revealed the number in a speech in New Zealand earlier this week. Denham said the GDPR had also sparked a rise in data protection complaints raised with her office.

Full article: GDPR: more than 8,000 data breaches notified to ICO

Facebook’s privacy problems: a roundup

Facebook disclosed on Friday that a bug may have affected up to 6.8 million users, allowing app developers to see photos that users had uploaded but never posted – but this was hardly the first mea culpa the social media giant has had to send out regarding data and security as of late. Here’s a quick look at Facebook’s recent issues with user privacy.

Full article: Facebook’s privacy problems: a roundup | Technology | The Guardian

Facebook admits bug allowed apps to see hidden photos

Bug let developers access pictures people had uploaded but chosen not to post A Facebook bug let app developers see photos users had uploaded but never posted, the social network has disclosed.

For two weeks in September, an error in the way Facebook shares photos with third parties meant that apps could see not only photos users had posted on their newsfeed, but also pictures in other parts of the site – on Facebook Stories or Facebook’s Marketplace, for instance.

Full article: Facebook admits bug allowed apps to see hidden photos

3 ways dark web data trade will change in 2019, and how to protect your business

Both corporate data and personal information continue to be big targets for attackers, especially those attempting to commit acts of terrorism or financial crime. Many organizations feel as though attacks are inevitable, but with careful and consistent security measures, companies can stay safe, according to the report.

In order to implement the most effective security measures, businesses must look at data like a commodity, with the same importance as intellectual party, equipment, and employees, the report found.

Full article: 3 ways dark web data trade will change in 2019, and how to protect your business – TechRepublic

>